	US 12,302,451 B2
	IoT security policy on a firewall
Kalyan Siddam, San Jose, CA (US); and Jun Du, Cupertino, CA (US)
Assigned to Palo Alto Networks, Inc., Santa Clara, CA (US)
Filed by Palo Alto Networks, Inc., Santa Clara, CA (US)
Filed on Sep. 29, 2021, as Appl. No. 17/489,159.
Application 17/489,159 is a continuation in part of application No. 17/381,103, filed on Jul. 20, 2021, granted, now 11,722,875.
Application 17/381,103 is a continuation of application No. 17/133,189, filed on Dec. 23, 2020, granted, now 11,115,799, issued on Sep. 7, 2021.
Claims priority of provisional application 63/033,004, filed on Jun. 1, 2020.
Prior Publication US 2022/0095092 A1, Mar. 24, 2022
Int. Cl. H04W 8/00 (2009.01); H04L 9/40 (2022.01); H04W 8/18 (2009.01)

CPC H04W 8/005 (2013.01) [H04L 63/104 (2013.01); H04L 63/162 (2013.01); H04L 63/205 (2013.01); H04W 8/183 (2013.01)]

25 Claims

1. A system, comprising:

a processor configured to:

receive information associated with a network communication of an Internet of Things (IoT) device;

determine whether the IoT device was previously classified, and in response to determining that it was not previously classified, perform a classification process that includes performing an inline classification and subsequent verification of the inline classification;

use the received information to determine a device profile, including a device type, to associate with the IoT device; and

based at least in part on the device profile, generate a recommended security policy to be applied to the IoT device by a security appliance; and

a memory coupled to the processor and configured to provide the processor with instructions.